Training Course:Security for Microsoft SQL Server 2005School/Trainer:Hilton Computer Strategies
Houston, Texas, United States
Course Format: Classroom | E-learning | Virtual Class | Online | On-site | Blended | Self-paced
Course Description:
'' This two-day instructor-led course enables database administrators who work with enterprise environments to design security for database systems using Microsoft SQL Server 2005. The course emphasizes that students should think about the whole environment, which includes business needs, regulatory requirements and network systems, and database considerations during design. Students will also learn how to monitor security and respond to threats.
Audience
This course is intended for current professional database administrators who have three or more years of on-the-job experience administering SQL Server database solutions in an enterprise environment.
Prerequisites
Before attending this course, students must have:
Have basic knowledge of security protocols and how they work. For example, NTLM or Kerberos.
Have basic knowledge of public key infrastructure (PKI) systems. For example, how public and private keys
work, strengths and weaknesses, and what they are used for./font>
Have working knowledge of network architectures and technologies. For example, how a firewall works, how
IPSec works in networking context, common vulnerability points, etc.
Have working knowledge of Active Directory directory service. For example, security models, policies, group
policy objects (GPOs), and organizational units (OUs).
Be able to design a database to third normal form (3NF) and know the trade offs when backing out of the fully
normalized design (denormalization) and designing for performance and business requirements in addition to
being familiar with design models, such as Star and Snowflake schemas.
Have strong monitoring and troubleshooting skills.
Have experience creating Microsoft Visio drawings or have equivalent knowledge.
Have strong knowledge of the operating system and platform. That is, how the operating system integrates
with the database, what the platform or operating system can do, interaction between the operating system and the database.
Have basic knowledge of application architecture. That is, different methods of implementing security in an
application, how applications can be designed in three layers, what applications can do, the interaction between applications and the database, and interactions between the database and the platform or operating system.
Have knowledge about network security tools. For example, sniffer and port scanning. Must understand how
they should be used.
Be able to use patch management systems.
Have knowledge of common attack methods. For example, buffer overflow, replay attacks, etc.
Be familiar with SQL Server 2005 features, tools, and technologies.
Have a Microsoft Certified Technology Specialist: Microsoft SQL Server 2005 credential or equivalent experience.
In addition, it is recommended, but not required, that students have completed:
Course 2778: Writing Queries Using Microsoft SQL Server 2005 Transact-SQL.
Course 2779: Implementing a Microsoft SQL Server 2005
Course 2780: Maintaining a Microsoft SQL Server 2005 Database
Microsoft Certified Professional Exams
There is no MCP exam associated with this course.
Student Materials
The student kit includes a comprehensive workbook and other necessary materials for this class.
Course Outline
Module 1: Introduction to Designing SQL Server Security
This module introduces the principles and methodology of designing SQL Server security. This module also explains the benefits of having a security policy in place and the process of creating a security policy. In addition, this module teaches you the importance of monitoring the security of SQL Server.
Lessons
Principles of database security
Methodology for designing a SQL Server security policy
Monitoring SQL Server security
Module 2: Designing a SQL Server Systems Infrastructure Security Policy
This module provides the guidelines for implementing server-level security using authentication methods. This module also provides the knowledge required to develop a Microsoft Windows server-level security policy. To enable you to do this, this module provides the guidelines to create password policy and determine service accounts permissions. In addition, this module explains how to select an appropriate encryption method to develop a secure communication policy. This module also explains the monitoring standards for SQL Server.
Lessons
Integrating with enterprise authentication systems
Developing Windows server-level server policies
Developing a secure communication policy
Defining SQL Server security monitoring standards
Module 3: Designing Security Policies for Instances and Databases
This module explains how to design SQL Server instance-level, database-level, and object-level security policies. This module teaches the security monitoring standards for instances and databases.
Lessons
Designing an instance-level security policy
Designing a database-level security policy
Designing an object-level security policy
Defining security monitoring standards for instances and databases
Module 4: Integrating Data Encryption into a Database Security Design
This module provides the guidelines and considerations for security data using encryption and certificates. This module also describes various data encryption policies. Finally, this module shows how to determine a key storage method.
Lessons
Securing data by using encryption and certificates
Designing data encryption policies
Determining a key storage method
Module 5: Designing a Security Exceptions Policy
This module provides guidelines for gathering business and regulatory requirements and comparing them with existing policy. This module also covers how to determine the exceptions and their impact on security.
Lessons
Analyzing business and regulatory requirements
Determining the exceptions and their impact
Module 6: Designing a Response Strategy for Threats and Attacks
This module provides guidelines to respond to virus and worm attacks, denial-of-service attacks, and injection attacks.
Lessons
Designing a response policy for virus and worm attacks
Designing a response policy for denial-of-service attacks
Designing a response policy for internal and SQL injection attacks
...''
Please go to the school's official website for training price and schedule:
http://www.hiltoncomputer.com/
Phone:1-800-324-7415
School Address:
Hilton Computer Strategies, 6001 Savoy, Suite 207, Houston, TX 77036 USA
Jobs & Resumes: Houston
Houses & Roommates: Houston
Other training courses offered by Hilton Computer Strategies:
CISSP Foundation
Service Oriented Architecture
Microsoft Office SharePoint Server 2007
Microsoft Office InfoPath 2007
Microsoft Office SharePoint Server 2007 Administration
Inside Microsoft SharePoint 2007 Products and Technology
Implementing a Microsoft SQL Server 2005 Database
Maintaining a Microsoft SQL Server 2005 Database
Microsoft SQL Server 2005 Server-Side Solutions
Tuning and Optimizing Queries using Microsoft SQL Server 2005
Administering and Automating Microsoft SQL Server 2005 Databases and Servers
Microsoft Server 2005 Analysis Services
Microsoft SQL Server 2005 Integration Services
Business Intelligence Solution for the Enterprise using Microsoft SQL Server 2005
ETL Solution Architecture using Microsoft SQL Server 2005 Integration Services
Microsoft SQL Server 2005 Reporting Services
SQL Server 2008
Microsoft Systems Center Configuration Manager 2007
Transact SQL
Notice: The course description on this page was captured from the Internet as historical reference or submitted by visitors. It was archived statically and not updated from day to day.
Tips:
In most cases you will get a unique submit code along with your each posting on this website. Please provide it as well as the message title if you want any assistance for editing/removal. |
|
|
